CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

236 matches found

AstraLinux•added 2026/06/19 11:10 a.m.•5 views

Astra Linux – Vulnerability in Firefox

A ambiguous file picker design could have confused users who intended to select and upload a single file, into uploading an entire directory. This issue was addressed by adding a new prompt. This vulnerability affects Firefox versions earlier than 85...

6.5CVSS6.9AI score0.00993EPSS

Exploits1References2

AstraLinux•added 2026/06/19 11:10 a.m.•5 views

Astra Linux – Vulnerability in Chromium

The inappropriate implementation of the File Picker in Google Chrome prior to version 139.0.7258.127 allowed a remote attacker who convinced a user to perform certain UI gestures to leak cross-origin data through a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.5AI score0.0023EPSS

Exploits0References2

OPENSUSE Linux•added 2026/06/11 12:0 a.m.•5 views

Security update for chromium (important)

openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2025:0301-1 Rating: important References: 1247981 Cross-References: CVE-2025-8879 CVE-2025-8880 CVE-2025-8881 CVE-2025-8882 CVE-2025-8901 Affected Products: openSUSE Backports SLE-15-SP7 An update that fixes 5...

8.8CVSS7.1AI score0.00289EPSS

Exploits0References1

AstraLinux•added 2026/05/20 5:53 a.m.•2 views

Astra Linux - уязвимость в firefox, thunderbird

When creating a callback via IPC to display the File Picker window, multiple identical callbacks might be created at once. Eventually, all of them would be destroyed as soon as one of the callbacks is completed. This could lead to a use-after-free condition, resulting in a potentially exploitable...

6.5CVSS6.6AI score0.00571EPSS

Exploits0References2

vulnersOsv•added 2026/05/05 6:33 p.m.•9 views

arthexis (>=0.2.6 <=0.8.0), cg-django-uaa (=2.1.9) +29 more potentially affected by CVE-2026-5766 via django (>=5.2.0 <=5.2.13)

django PYPI version =5.2.0, =0.2.6, =0.1.0, =0.1.0, =1.3.0, =1.92.0.5, =4.2.0, =0.0.7, =3.0.0, =0.1.0, =0.1.1 and more Source cves: CVE-2026-5766 Source advisory: OSV:GHSA-W26R-RMM8-9C29...

6.3CVSS5.4AI score0.00423EPSS

Exploits0

vulnersOsv•added 2026/04/07 3:30 p.m.•9 views

arthexis (>=0.2.6 <=0.8.0), cg-django-uaa (=2.1.9) +29 more potentially affected by CVE-2026-3902 via django (>=5.2.0 <=5.2.12)

django PYPI version =5.2.0, =0.2.6, =0.1.0, =0.1.0, =1.3.0, =1.92.0.5, =4.2.0, =0.0.7, =3.0.0, =0.1.0, =0.1.1 and more Source cves: CVE-2026-3902 Source advisory: OSV:GHSA-MVFQ-GGXM-9MC5...

7.5CVSS5.4AI score0.00436EPSS

Exploits0

Tenable Nessus•added 2026/01/20 12:0 a.m.•5 views

MiracleLinux 7 : firefox-102.15.0-1.0.1.el7.AXS7 (AXSA:2023-6392:33)

The remote MiracleLinux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2023-6392:33 advisory. Mozilla: Memory corruption in IPC CanvasTranslator CVE-2023-4573 Mozilla: Memory corruption in IPC ColorPickerShownCallback CVE-2023-4574 Mozilla:...

8.8CVSS8.5AI score0.00693EPSS

Exploits0References13